CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-35034

An insufficient session expiration vulnerability in the CGI program of the Zyxel NBG6604 firmware could allow a remote attacker to access the device if the correct token can be intercepted.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.4%

CVSS Severity

CVSS v3 Score 7.4

CVSS v2 Score 6.4

References

https://www.zyxel.com/support/Zyxel_security_advisory_for_sensitive_information_vulnerabilities_of_NBG6604_home_router.shtml
https://www.zyxel.com/support/Zyxel_security_advisory_for_sensitive_information_vulnerabilities_of_NBG6604_home_router.shtml

Products affected by CVE-2021-35034

Zyxel » Nbg6604 » Version: N/A

cpe:2.3:h:zyxel:nbg6604:-
Zyxel » Nbg6604 Firmware » Version: N/A

cpe:2.3:o:zyxel:nbg6604_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-35034

Products

Pricing

Contact Us